Make sure we treat records written after HRR as TLSv1.3 (758e05c5) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

ssl/ssl_locl.h

+2 −1

Original line number	Diff line number	Diff line
		@@ -326,7 +326,8 @@
		(SSL_IS_TLS13(s) \|\| (s)->early_data_state == SSL_EARLY_DATA_CONNECTING \
		\|\| (s)->early_data_state == SSL_EARLY_DATA_CONNECT_RETRY \
		\|\| (s)->early_data_state == SSL_EARLY_DATA_WRITING \
		\|\| (s)->early_data_state == SSL_EARLY_DATA_WRITE_RETRY)
		\|\| (s)->early_data_state == SSL_EARLY_DATA_WRITE_RETRY \
		\|\| (s)->hello_retry_request == SSL_HRR_PENDING)

		# define SSL_IS_FIRST_HANDSHAKE(S) ((s)->s3->tmp.finish_md_len == 0 \
		\|\| (s)->s3->tmp.peer_finish_md_len == 0)

Original line number	Diff line number	Diff line
		@@ -326,7 +326,8 @@
		(SSL_IS_TLS13(s) \|\| (s)->early_data_state == SSL_EARLY_DATA_CONNECTING \
		\|\| (s)->early_data_state == SSL_EARLY_DATA_CONNECT_RETRY \
		\|\| (s)->early_data_state == SSL_EARLY_DATA_WRITING \
		\|\| (s)->early_data_state == SSL_EARLY_DATA_WRITE_RETRY)
		\|\| (s)->early_data_state == SSL_EARLY_DATA_WRITE_RETRY \
		\|\| (s)->hello_retry_request == SSL_HRR_PENDING)

		# define SSL_IS_FIRST_HANDSHAKE(S) ((s)->s3->tmp.finish_md_len == 0 \
		\|\| (s)->s3->tmp.peer_finish_md_len == 0)